EXPLOITDB-EDB-50712

EXPLOITDB ruby WORKING POC

Exploit for CVE-2022-22833 - Servisnet Tessa 0.0.2 - Info Disclosure

AI Analysis

This Metasploit module exploits a privilege escalation vulnerability in Servisnet Tessa by leveraging an API endpoint to retrieve user information, including session IDs, and then creating a new admin user with a hardcoded password.

Attack Type

auth_bypass

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1110 - Brute Force

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform multiple

Language ruby

Files 1

https://www.exploit-db.com/exploits/50712

Authors

AkkuS Özkan Mustafa AKKUŞ

Vulnerability

CVE-2022-22833

Servisnet Tessa 0.0.2 - Info Disclosure

HIGH

CVSS 7.5